Analysis

  • max time kernel
    146s
  • max time network
    147s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23-12-2024 01:35

General

  • Target

    https://drive.google.com/drive/folders/1IYRLHKed4drJAPj-FKRp02NJVf2dXY2P?usp=sharing

Score
6/10

Malware Config

Signatures

  • Legitimate hosting services abused for malware hosting/C2 1 TTPs 2 IoCs
  • Browser Information Discovery 1 TTPs

    Enumerate browser information.

  • Enumerates system info in registry 2 TTPs 3 IoCs
  • Modifies data under HKEY_USERS 2 IoCs
  • Suspicious behavior: EnumeratesProcesses 6 IoCs
  • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary 4 IoCs
  • Suspicious use of AdjustPrivilegeToken 64 IoCs
  • Suspicious use of FindShellTrayWindow 64 IoCs
  • Suspicious use of SendNotifyMessage 24 IoCs
  • Suspicious use of WriteProcessMemory 64 IoCs

Processes

  • C:\Program Files\Google\Chrome\Application\chrome.exe
    "C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-background-networking --disable-component-update --simulate-outdated-no-au='Tue, 31 Dec 2099 23:59:59 GMT' --single-argument https://drive.google.com/drive/folders/1IYRLHKed4drJAPj-FKRp02NJVf2dXY2P?usp=sharing
    1⤵
    • Enumerates system info in registry
    • Modifies data under HKEY_USERS
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: NtCreateUserProcessBlockNonMicrosoftBinary
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of WriteProcessMemory
    PID:3488
    • C:\Program Files\Google\Chrome\Application\chrome.exe
      "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" /prefetch:4 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\Admin\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=123.0.6312.123 --initial-client-data=0xf8,0xfc,0x100,0xd4,0x104,0x7ff80d76cc40,0x7ff80d76cc4c,0x7ff80d76cc58
      2⤵
        PID:224
      • C:\Program Files\Google\Chrome\Application\chrome.exe
        "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --no-appcompat-clear --gpu-preferences=WAAAAAAAAADgAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=1924,i,3735510939271106327,10832405931470329449,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=1916 /prefetch:2
        2⤵
          PID:1828
        • C:\Program Files\Google\Chrome\Application\chrome.exe
          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=2152,i,3735510939271106327,10832405931470329449,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2164 /prefetch:3
          2⤵
            PID:3176
          • C:\Program Files\Google\Chrome\Application\chrome.exe
            "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=storage.mojom.StorageService --lang=en-US --service-sandbox-type=service --no-appcompat-clear --field-trial-handle=2232,i,3735510939271106327,10832405931470329449,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=2404 /prefetch:8
            2⤵
              PID:3056
            • C:\Program Files\Google\Chrome\Application\chrome.exe
              "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=6 --field-trial-handle=3100,i,3735510939271106327,10832405931470329449,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3156 /prefetch:1
              2⤵
                PID:2040
              • C:\Program Files\Google\Chrome\Application\chrome.exe
                "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=5 --field-trial-handle=3108,i,3735510939271106327,10832405931470329449,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=3204 /prefetch:1
                2⤵
                  PID:1496
                • C:\Program Files\Google\Chrome\Application\chrome.exe
                  "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.ProcessorMetrics --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4672,i,3735510939271106327,10832405931470329449,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4684 /prefetch:8
                  2⤵
                    PID:3168
                  • C:\Program Files\Google\Chrome\Application\chrome.exe
                    "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=8 --field-trial-handle=4984,i,3735510939271106327,10832405931470329449,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4360 /prefetch:1
                    2⤵
                      PID:3500
                    • C:\Program Files\Google\Chrome\Application\chrome.exe
                      "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=4968,i,3735510939271106327,10832405931470329449,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=4964 /prefetch:8
                      2⤵
                        PID:4024
                      • C:\Program Files\Google\Chrome\Application\chrome.exe
                        "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=renderer --no-appcompat-clear --lang=en-US --device-scale-factor=1 --num-raster-threads=4 --enable-main-frame-before-activation --renderer-client-id=10 --field-trial-handle=5260,i,3735510939271106327,10832405931470329449,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5172 /prefetch:1
                        2⤵
                          PID:2536
                        • C:\Program Files\Google\Chrome\Application\chrome.exe
                          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=gpu-process --disable-gpu-sandbox --use-gl=disabled --gpu-vendor-id=4318 --gpu-device-id=140 --gpu-sub-system-id=0 --gpu-revision=0 --gpu-driver-version=10.0.19041.546 --no-appcompat-clear --gpu-preferences=WAAAAAAAAADoAAAMAAAAAAAAAAAAAAAAAABgAAEAAAA4AAAAAAAAAAAAAACEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAAAAAAAAAAYAAAAAAAAAAgAAAAAAAAACAAAAAAAAAAIAAAAAAAAAA== --field-trial-handle=5012,i,3735510939271106327,10832405931470329449,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5344 /prefetch:8
                          2⤵
                          • Suspicious behavior: EnumeratesProcesses
                          PID:2932
                        • C:\Program Files\Google\Chrome\Application\chrome.exe
                          "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --lang=en-US --service-sandbox-type=none --no-appcompat-clear --field-trial-handle=5264,i,3735510939271106327,10832405931470329449,262144 --variations-seed-version=20241006-180150.222000 --mojo-platform-channel-handle=5292 /prefetch:8
                          2⤵
                            PID:2368
                        • C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe
                          "C:\Program Files\Google\Chrome\Application\123.0.6312.123\elevation_service.exe"
                          1⤵
                            PID:372
                          • C:\Windows\system32\svchost.exe
                            C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted -p -s NgcSvc
                            1⤵
                              PID:4528
                            • C:\Windows\System32\rundll32.exe
                              C:\Windows\System32\rundll32.exe C:\Windows\System32\shell32.dll,SHCreateLocalServerRunDll {9aa46009-3ce0-458a-a354-715610a075e6} -Embedding
                              1⤵
                                PID:2568
                              • C:\Program Files\7-Zip\7zG.exe
                                "C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Downloads\keys\" -an -ai#7zMap29153:122:7zEvent25405
                                1⤵
                                • Suspicious use of AdjustPrivilegeToken
                                • Suspicious use of FindShellTrayWindow
                                PID:2424
                              • C:\Program Files\7-Zip\7zG.exe
                                "C:\Program Files\7-Zip\7zG.exe" x -o"C:\Users\Admin\Downloads\firmware\" -an -ai#7zMap30420:138:7zEvent23643
                                1⤵
                                  PID:1296

                                Network

                                MITRE ATT&CK Enterprise v15

                                Replay Monitor

                                Loading Replay Monitor...

                                Downloads

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\BrowsingTopicsState

                                  Filesize

                                  649B

                                  MD5

                                  9d59f030554221c4a4d92d2ba333a5c4

                                  SHA1

                                  0bda117e403bb4d761aa6039938ebcc42f418d43

                                  SHA256

                                  e279da0f9db024b300e60da7e7e350c933ce03e7121f71420351ecf1a88c8996

                                  SHA512

                                  0f0e650c2d8e39f9f09f3bac376a73d4acb21fcafeaa1bed335855c8386f39747e8cf6f9948b52e2dbbd5e6008506c8ac73ba0458fd89d455351c9171e951870

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

                                  Filesize

                                  1KB

                                  MD5

                                  d364e230501361ec048682a7ed444e4d

                                  SHA1

                                  2ce329c6ae99b2f3479bf48202eaf43b6669bebf

                                  SHA256

                                  4ef4a7b58bee0176d8b0b87a467dd3816e30b1dc69d1647586a082bc03def7bb

                                  SHA512

                                  4a4cf1c7154652403b16adf2a443beb7d000903f8d61da2ff52431eeeb885a3263b9cef9eafa42c9f6035cf2cb3f441b2176c6135c5969fd54704a350f7717d0

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\index-dir\the-real-index

                                  Filesize

                                  1KB

                                  MD5

                                  469f941de8477fe43858321fc24d258d

                                  SHA1

                                  0f0e6b43e81e829d2c548177e02cf5734685a082

                                  SHA256

                                  e74449162340f2f170e98017e12c045d1d4ec665d34dcb09b0640cd4c024548e

                                  SHA512

                                  93d9ec9ecf03cc54e13557c95ee72781b6386c4dca8c47e97b80581b786f59c3c72444a807394107590ebc3491c8e4cc46db731bc0596c7bab0c208079cbfaf4

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

                                  Filesize

                                  5KB

                                  MD5

                                  2f550e6fef7b37fe620e6475c5d7da30

                                  SHA1

                                  eedac181b81268646117ce6e696cfddcecc9c8b0

                                  SHA256

                                  45de5e98705b96d9111c251068ad27a06bb84be518d625c0b5e4efc171a46917

                                  SHA512

                                  018dc37786e9cb8ea5293690a669a9e584382300243d8c65016906f04921b86475b591fe71692568bacbe798bd8fc910add5e9d5ffb253a9ad0b2078792c6487

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\Network Persistent State

                                  Filesize

                                  7KB

                                  MD5

                                  317c7acc561d1f80e7508908edf002cb

                                  SHA1

                                  00bc73cceb47419557da6f101eb53fe9c0377880

                                  SHA256

                                  4beb867ff3c6bf5c78d2a175a6142ab22770a4f239d095b48e278f6fe72bc78b

                                  SHA512

                                  f06c3e7b1310a5bed82f52a3711358b3c581d1b3d299ef899128fbab2edba8fbc36336b486e9a10fd97ac07ef825bd7b44ef500bf4276b8e9672935e5e433ae3

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\SCT Auditing Pending Reports

                                  Filesize

                                  2B

                                  MD5

                                  d751713988987e9331980363e24189ce

                                  SHA1

                                  97d170e1550eee4afc0af065b78cda302a97674c

                                  SHA256

                                  4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

                                  SHA512

                                  b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                                  Filesize

                                  1KB

                                  MD5

                                  3f4846c6ba59cf29c5277b210cd71c55

                                  SHA1

                                  0762282fafe69f78be6837eb53d242cf68ee64a9

                                  SHA256

                                  eb121d5ac2b307cf9772a2b8cee064700bb720493dec6b7a3c16386ea08ba7d1

                                  SHA512

                                  040e081d8376ec1195e0e1178c824c5b60f0c75575b367157d3045d50ae2af23c3c157e24fe60f3fbd2f3596ce1f498651a55068d7aa2514ed3cb1d17aba59a3

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                                  Filesize

                                  1KB

                                  MD5

                                  53fe42134c9a499d509dbe2e5aef9bff

                                  SHA1

                                  c21db22ea27c609d9f671e0758dbe5556015745f

                                  SHA256

                                  77cc4b5d0fa0d898214b81a4c8f9d19b03f3fcf54a4f973482b1bea9c3536867

                                  SHA512

                                  5c381eda7585078c48afbf0c1485901bdb889445c8c9ea620624945bd4d8fff273cc40482aa6d22e19c8c653c9c15e6a24ba238a9218f375dbbb77a5b1fbf3d3

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                                  Filesize

                                  1KB

                                  MD5

                                  5954800bd9b21a2d1de6fb6f78218e7f

                                  SHA1

                                  8fe8f8b8414025b85b496a9edb4f7c5d1d561523

                                  SHA256

                                  1b396207f6f48f5c4d81f8e52c8e83f46c39a2f2551ff0576aaeea06786529b9

                                  SHA512

                                  005f55e5e68a1ed9d9cfc8e27103005aa13b68a0cbd72da38bc90c2652ec3cb620e8c13dfc309140ae657d282792f60747d0aa74eb5627ede46d6baf89df10bc

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                                  Filesize

                                  1KB

                                  MD5

                                  1d7cc4a59ac5d8c0003734d4467f7161

                                  SHA1

                                  deb9237239f3aa406fbd06addcad7658e9fd562d

                                  SHA256

                                  6af77b85b4d94575c3552249187f9291ad64f71b3ca1b2942d7e9ef98175dd08

                                  SHA512

                                  712beb5994a756fcae8dd43e7cc44b637827816b84bb59e74d610cba8cb0678b202cf11dacdc11f79c45d615350a2fd3c846a24fe5f8b4884dbf94f44e1dc45e

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                                  Filesize

                                  1KB

                                  MD5

                                  e55e87c2e096b4f0545f7391dad1e10d

                                  SHA1

                                  72e99be44a3dd70e1d2d2f9691862a2c6d96e183

                                  SHA256

                                  e6dfe4bc0225990b4665cd3ca2c3192daad34e764ff782db6a0cb5ae6d380b43

                                  SHA512

                                  ca118a8df3733e2dafc41a5787b9367416c2869e848131c260f725fe9f4a233a58b5dee16ec7c5aff8b9f7409feb152b85f9766ec55e50db90bcb0e6f76be180

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Network\TransportSecurity

                                  Filesize

                                  1KB

                                  MD5

                                  2e1705fefdfd20a3be5afa4fad1f61dc

                                  SHA1

                                  1ce7767146ede01df6f9c4fb4bf0da070f053760

                                  SHA256

                                  30d3783851cc975d204dd58e01f9f604e72acf0284ba77eb3f127e5abd97e9fd

                                  SHA512

                                  e80174e0b1b90c0113a3df1bc915639f7537fab508040839204e6e2fde4b74494f6d07915a8387a01aaf7d5668cb320a709529ae98d9f95014facfe71b00093e

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                  Filesize

                                  10KB

                                  MD5

                                  73921211ced4ea0afd855407b840b12b

                                  SHA1

                                  a8f641d30e87097af5fb1b89e42cb0ac25ed5140

                                  SHA256

                                  14f507e6d49e04698d95a0b8b4397f063bbb111585b544f8f796132167c13c0b

                                  SHA512

                                  068a1264b7637fdc7a0c80993f72ae74143fe660d01cd6cef8dc5c8a77cc412d9d5dfff54791492315d788e85199a4d8b140e30249d9971b79298dced18cd40f

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                  Filesize

                                  10KB

                                  MD5

                                  b5ae3751a1b0ac4a6b29557702965330

                                  SHA1

                                  2d4e7113b2af5e3efd84c85d06185bd409236673

                                  SHA256

                                  0eba681bef4db77118419558a24d11d9e2653cbb9484da6346ba818e594520ef

                                  SHA512

                                  473a112e4b429df6a3a9f13ac24e2c93454cdb2f6ffabd8c66ef0cd49d42924c9368c092d26967f8419ab38fffc1187824bff1b1ae951e15211fda53562a737d

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                  Filesize

                                  10KB

                                  MD5

                                  48eaff7cdfd325a26677bb90915b9cb7

                                  SHA1

                                  25f8ab5be5ce07fb7d8bcf004775dc0a8626367c

                                  SHA256

                                  b8a05e044b0ca18e1e48fb4b07fc55a64e9898f4190131016f8b6f430d18d2bb

                                  SHA512

                                  c28ce87fa8f235f3a7331ae17a4fa2d4e5b6244c3e91f31d05cb1501282df1181abbd6cbaf09e1838094adda3129ed4e6de03516f1ebbfadd73b76cefc430a1c

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                  Filesize

                                  10KB

                                  MD5

                                  6957c6a191b8264683649e0d653a845c

                                  SHA1

                                  31d74215c117bc9a89488ccf891ad9d6c8e11556

                                  SHA256

                                  9069eef08fa509bc6d8de89de43f57db9bf8d5041e7370d7263b0fa09fa38505

                                  SHA512

                                  75346114e3d77dc0e80b9e8395506ca1b169e15178bccdb7c2ad1d27e6a475571883d3f88afaaeb9a57a1c0eb4ad487603ba2b54367c1189dead4173ed4628aa

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                  Filesize

                                  10KB

                                  MD5

                                  5c0d36e53182d5f7faf0fc2525c059c8

                                  SHA1

                                  4b9a6f8dc5bc980bedf7caecbda27b972a93ff02

                                  SHA256

                                  f19426635a95593c0389b2ecdae2c1b1b931f5b59450c7cfe1398cc5eb1e031d

                                  SHA512

                                  124f43e251dc8e9b930e771e560fde5d506ba9cc2ff237b0c2bfb4822ee9ff98606f2a66eaccf9a61f85133d1c5807309fa22aec834cc92bd11f6141bb5f15e7

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                  Filesize

                                  9KB

                                  MD5

                                  44b45dce64dd7226e702bb6e18f115ea

                                  SHA1

                                  4fac0905d564d698ac21cda1d2ac0789829b9fc5

                                  SHA256

                                  66fd5cb45cd347e64c2494f297c230609267ad458fea8d0a88eea0717d5fcb72

                                  SHA512

                                  5031963da2d1f1ca485610762d3b58299b3396c643a6881d0d361a9c8fcd41a61f47865f4a3005400ff53b6527ce029d2c1c66d6d0e6dc97fa554e7e8b0a6acf

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                  Filesize

                                  9KB

                                  MD5

                                  aefa028614cf9dcb520c701391aa9b89

                                  SHA1

                                  007634d91d81efba6470bc3612c9f747276d98ce

                                  SHA256

                                  3ef8f122bd83f7e64674b16b5aeee9bdadba5c1b745e899eba00949d5e316d00

                                  SHA512

                                  8242ab7dfa2c71927ad4d62c66a58f9e571a6bf36415131f8d7177045551513f2b02dc34bffe26a14a432e6da01bf470132b9af1072b35807f118f2abbdca0de

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                  Filesize

                                  10KB

                                  MD5

                                  d476657b9ea9c307fb9bfd8345dbba79

                                  SHA1

                                  636c43bfe8d7fbf1bb6df08501e25d085e0abb99

                                  SHA256

                                  54bb478e44bf2abf79432a4087e382bc667bd66399e7789388321267b2da775d

                                  SHA512

                                  9a21eeed69a991b619baa852be28e8a08ab90451c3d9d45e2cb80e07098c6be09404ab373e773e15c5eafbc34822cce8c9769986501b4a8dd0122604cb90c730

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                  Filesize

                                  10KB

                                  MD5

                                  e4ef48a495482b278ebd894f1d4ad6c0

                                  SHA1

                                  e0ea21b3ad5c42c303a57a7b97b7a004d942f75b

                                  SHA256

                                  b2294b030d3620721c2541ce71e73b61c320566884609f9178fe4d5a2c5fb2c8

                                  SHA512

                                  f17271872ddfbfe7b2ac74cccebf4ebbc9ebd5af3540adc0db1cc39dee06bc660411e2ec1ceaab229ae5d18bb031109ca2a85b353573f5d2b37ca4b09be8757e

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Preferences

                                  Filesize

                                  10KB

                                  MD5

                                  a3199c2fdd1b27e2cf1e592a5483f149

                                  SHA1

                                  70d349270c80655ebb97a4fc583e75c7591bd377

                                  SHA256

                                  41ec3b930b5f71860c918efca04f1cb9129dee2a639ce2cb5d714e3a527fc78c

                                  SHA512

                                  202179759c3013da49570be3d43f4f2a1ba031beb2b7527dbd275d6819e30963b44923a2bb02b876a2038506d155f4ffccdf363ebf5d1368098336e480a53812

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Manifest Resources\aghbiahbpaijignceidepookljebhfak\Icons\16.png

                                  Filesize

                                  566B

                                  MD5

                                  b3b099003f605d552145790cf1b71e00

                                  SHA1

                                  6dc54b1268536935e9ac96a27c34c03aa1a1eccb

                                  SHA256

                                  1d1113f78a60a4702db32f106598883cb864cd273a708ee292dd6003e3cc8d4b

                                  SHA512

                                  d078de028160ea917c24ccbda0b74a8374a2153c7bd1f5a108710b102d64f0ffdc57caefe2979153a8d42d2e8d7a85089680bfae9f4facaaf048d8d93494d5f4

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Web Applications\Temp\scoped_dir3488_106453261\Icons\128.png

                                  Filesize

                                  7KB

                                  MD5

                                  8eec20e27dd654525e8f611ffcab2802

                                  SHA1

                                  557ba23b84213121f7746d013b91fe6c1fc0d52a

                                  SHA256

                                  dc4598a0e6de95fae32161fd8d4794d8ee3233ab31ba5818dfbe57f4f2253103

                                  SHA512

                                  b19d628a7d92a6ec026e972f690bf60f45cbab18fc3e6ab54a379d8f338da95e2964ecdc5e2bb76713f5d3ab2ced96766921e3b517036e832148d1fe5fe8aa6a

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

                                  Filesize

                                  116KB

                                  MD5

                                  cbcd94a99d78e236725494c725d6cbf3

                                  SHA1

                                  25eef4247084d81b530cce9f2c89539602805fa0

                                  SHA256

                                  d3762d339135e319e6ce2ff1c709a3e691db3e3a9a4723bb8e857babd976413b

                                  SHA512

                                  b4da83b218141cd0cb789d523d0229f56fda85e1eb812092a58be3b89556b00bfc9d7c87381225322dbb0985ec2d1a228c4dfaa641c90e5177ecddf7b19c9865

                                • C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Local State

                                  Filesize

                                  116KB

                                  MD5

                                  b859cb7a917c3c4a72e485efb81bd323

                                  SHA1

                                  8466dc15d8df996a8baf1487ba6d8f486a49d1e0

                                  SHA256

                                  4b167386a1cfe091e0a41c2486a59a892a6ef1335ef1a4d64235328f8c4a9d7d

                                  SHA512

                                  375f33931944ff3edfc11243d7af4cd79e12a328690dd9d0635b93bc87b4ae0be06c830aa24b86ad627976c8113c170246905103007a1c59454a109abacd9603

                                • C:\Users\Admin\Downloads\keys-20241223T013541Z-001.zip.crdownload

                                  Filesize

                                  64KB

                                  MD5

                                  a5ed2516bd4e35f236c1ccfefebfaddb

                                  SHA1

                                  501bcaa20ba689a1afc468d4850a56bce8250df2

                                  SHA256

                                  93e4945310ee62466d62f912c47d70d8f38a1656cf1fc240735401eabeded047

                                  SHA512

                                  b4da03a7d71ba3a2d55c96ccf90088433700a8bca09afd5d20ace18c52e4c942fd69cd6415103feba77747d080c304854ba2a9878d949d258e9ebfcf260a080e

                                • C:\Users\Admin\Downloads\keys\keys\ProdKeys-v18.0.0.zip

                                  Filesize

                                  31KB

                                  MD5

                                  03983306d800dbe29d07f1887c46b463

                                  SHA1

                                  42ac52f992a3f1f1fa6fac627c410d3b54f641c4

                                  SHA256

                                  f8119c65c3f4dd5f4d6343270e7520aff0bdd12ec9a0cc3f7e20cf00b1e49971

                                  SHA512

                                  6012848f849380a270aa3510b6264378aceec4678b30035431bfa829244bd86d97aeb3a17e9d86786247813b7de072e3666ff6c3c28155c62a4f0ea333ff7621